[KB8181] Configure the trusted zone in an ESET Endpoint Security deployment to prevent loss of network connectivity in ESET PROTECT On-Prem

• Prevent the loss of internet connectivity on client computers due to firewall settings when deploying ESET Endpoint Security
• Add the IP range/subnets to the trusted zone before deploying ESET Endpoint Security
• Allow ping/RDP/internal network communication
• Edit or disable Firewall rules in ESET PROTECT On-Prem

Add the IP range/subnets to the trusted zone before deploying ESET Endpoint Security

To resolve your RDP/ping not working issue, configure the trusted zone with the IPv4 and Remote IP addresses, ranges, masks, and subnets (for example, any VPN networks and all subnets inside your network). 

1. Open ESET PROTECT On-Prem in your web browser and log in.

2. Click Policies, select the desired Built-in policy and then click Actions → New Policy.

3. Type a name for the new policy into the Name field. The Description field is optional.

4. Click Settings, expand Network protection → Zones and click Edit next to Zones.

5. Select Trusted zone and click Edit. 

6. In the Remote computer address field, add your IPv4 and Remote IP addresses, ranges, masks, and subnets (for example, any VPN networks and all subnets inside your network), and then click OK.

7. Click Assign → Assign. Read more about assigning a policy to a client or a group.

8. Select the check boxes next to separate clients or next to each static or dynamic group you want this policy assigned to and click OK.

9. Click Finish to save your policy. When the system checks into ESET PROTECT On-Prem with the new settings, you can deploy ESET Endpoint Security to your network. 

Edit or disable Firewall rules in ESET PROTECT On-Prem

1. Open ESET PROTECT On-Prem in your web browser and log in.

2. Click Policies, select the desired Built-in policy and then click Actions → New Policy.

3. Type a name for the new policy into the Name field. The Description field is optional.

4. Click Settings, expand Network protection, click Firewall, expand Advanced and then click Edit next to Rules.

5. Select the check box next to Show built in (predefined) rules. Deselect the check boxes next to Block incoming NETBIOS requests and Block incoming RPC requests and click OK.

6. Click Assign → Assign. Read more about assigning a policy to a client or a group.

7. Select the check boxes next to separate clients or next to each static or dynamic group you want this policy assigned to and click OK.

8. Click Finish to save your policy. When the system checks into ESET PROTECT On-Prem with the new settings, you can deploy ESET Endpoint Security to your network.